CVE-2024-11321

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hi e-learning Learning Management System (LMS) allows Reflected XSS. This issue affects Learning Management System (LMS): before 06.12.2024.

medium 5.4 CVSS 3.1

Published: Dec 6, 2024

Modified: Jun 2, 2026

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hi e-learning Learning Management System (LMS) allows Reflected XSS.

This issue affects Learning Management System (LMS): before 06.12.2024.

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1878
https://www.usom.gov.tr/bildirim/tr-24-1878

Version	3.1
Score	5.4 / 10
Severity	medium